4cb09ca05bc3382b8dd6fbceb43b44b568be9cf0b66c6fdf951ce82da89d5df0 | Triage

Sharing

General

Target

4cb09ca05bc3382b8dd6fbceb43b44b568be9cf0b66c6fdf951ce82da89d5df0
Size

40KB
Sample

240824-2apthsvcjr
MD5

1e163b2ede555472d0855663e5af409c
SHA1

44906e0cce96830631090bc58264c28d68d8fde1
SHA256

4cb09ca05bc3382b8dd6fbceb43b44b568be9cf0b66c6fdf951ce82da89d5df0
SHA512

ab66e4fd46a48303a35865d52f9a5bcbb7d7aec654adb7e3f21c3f88bcc005075cf449d5d9f391a72edd041647dbfa1c2c2e6bf45ad2a3f92055fa7324c7e754
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLFcW+A:W7ZppApBULcfpHLcfpyDe

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4cb09ca05bc3382b8dd6fbceb43b44b568be9cf0b66c6fdf951ce82da89d5df0
- Size
  
  40KB
- MD5
  
  1e163b2ede555472d0855663e5af409c
- SHA1
  
  44906e0cce96830631090bc58264c28d68d8fde1
- SHA256
  
  4cb09ca05bc3382b8dd6fbceb43b44b568be9cf0b66c6fdf951ce82da89d5df0
- SHA512
  
  ab66e4fd46a48303a35865d52f9a5bcbb7d7aec654adb7e3f21c3f88bcc005075cf449d5d9f391a72edd041647dbfa1c2c2e6bf45ad2a3f92055fa7324c7e754
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLFcW+A:W7ZppApBULcfpHLcfpyDe
Score

9^/10

discovery ransomware
- Renames multiple (3751) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware